Step 2: Backend Integration | Mercoa

If you are using Mercoa for just payments check out our Creating Payouts via API guide.

Mercoa has a fully documented REST API that can be used in any language. We also have Node, Python, Java, and Go SDKs for easy backend integration.

At Mercoa, we aim to provide a seamless and whitelabeled experience for your users. As part of this experience, Mercoa does not force users to create a new account or log in to a different system.

Instead, Mercoa uses JWT tokens that you can generate to transparently authenticate the user session on the frontend.

Steps to generate a token

User logs into your platform
Find the Mercoa Entity that corresponds to that user’s business.
Optional: Sync individual users and their roles. This is required for Approvals.
Generate a JWT and pass it to the frontend.
Use the JWT with our frontend SDK, React Components, or embedded iFrame.

Creating a Token

Let’s create an endpoint that authenticates the user, generates a JWT with the entityId, and return the generated token. We will use Mercoa’s Generate JWT Token endpoint to make this easy.

1 from django.http import HttpResponse
2 from mercoa.client import Mercoa
3 
4 client = Mercoa(token="YOUR_API_KEY")
5 
6 def generate_mercoa_token(request):
7   client.entity.get_token(entity_id="ENTITY_ID_FROM_STEP_ONE",{})
8   return HttpResponse(token)

Using the Token

Now that we have a token, we can use it to authenticate the user in our frontend application. Tokens have a default expiration of 1 hour, but you can change this by passing in the expiresIn option when generating the token.